Author: fw
Date: 2005-10-09 09:09:13 +0000 (Sun, 09 Oct 2005)
New Revision: 2349
Modified:
data/CAN/list
data/DSA/list
Log:
New DSAs for tcpdump, openvpn, up-imapproxy.
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-10-08 15:21:50 UTC (rev 2348)
+++ data/CAN/list 2005-10-09 09:09:13 UTC (rev 2349)
@@ -1315,8 +1315,9 @@
CAN-2005-2662 (masqmail before 0.2.18 allows remote attackers to execute
arbitrary ...)
{DSA-848-1}
- masqmail 0.2.20-1sarge1 (high; bug #329307)
-CAN-2005-2661
+CAN-2005-2661 [format string vulnerability in up-imapproxy]
RESERVED
+ - up-imapproxy 1.2.4-2 (high)
CAN-2005-2660 (apachetop 0.12.5 and earlier, when running in debug mode, allows
local ...)
{DSA-839-1}
- apachetop 0.12.5-3 (unknown)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-10-08 15:21:50 UTC (rev 2348)
+++ data/DSA/list 2005-10-09 09:09:13 UTC (rev 2349)
@@ -1,5 +1,17 @@
+[08 Oct 2005] DSA-851-1 up-imapproxy - arbitrary code execution
+ {CAN-2005-2661}
+ - up-imapproxy 1.2.4-2
+ NOTE: not fixed in testing at time of DSA (not fixed in unstable)
+[08 Oct 2005] DSA-851-1 openvpn - denial of service
+ {CAN-2005-2531 CAN-2005-2532 CAN-2005-2533 CAN-2005-2534}
+ - openvpn 2.0.2-1
+ NOTE: fixed in testing at time of DSA
+[08 Oct 2005] DSA-850-1 tcpdump - denial of service
+ {CAN-2005-1279}
+ - tcpdump 3.8.3-4
+ NOTE: fixed in testing at time of DSA (woody-only DSA)
[08 Oct 2005] DSA-849-1 shorewall - programming error
- { CAN-2005-2317 }
+ {CAN-2005-2317}
- shorewall 2.4.2-2
NOTE fixed in testing at time of DSA
[08 Oct 2005] DSA-848-1 masqmail - several